The open-source Terraform alternative just got a massive upgrade. OpenTofu 1.10 is here, and itโs the most feature-packed release to date โ aimed at cloud-native engineers, CI/CD warriors, and teams embracing secure, modern IaC workflows.
Letโs unpack the biggest features with real-world impact ๐
๐งฉ 1. Native OCI Registry Support โ Modules Like Docker Images!
OpenTofu now supports Open Container Initiative (OCI) registries for distributing providers and modules.
โ
Push your infra modules to GitHub Container Registry or Docker Hub
โ
Works great in air-gapped or high-security environments
โ
Enables versioned, container-style dependency management
Finally, IaC modules are treated like software artifacts!
โ๏ธ 2. Native S3 State Locking โ No More DynamoDB Overhead
Using Amazon S3 for state storage? Great.
Now you can lock the state file natively โ no need to set up DynamoDB tables.
โ
Simplifies setup
โ
Reduces AWS infra cost
โ
Easier for teams and pipelines
One less moving part in your Terraform-inspired architecture.
๐ 3. External Key Provider Support
You can now encrypt state using your preferred key management solution:
- AWS KMS
- HashiCorp Vault
- Custom providers
Ideal for regulated industries and teams focused on compliance and security.
๐ค 4. AI-Ready: MCP Server + Editor Extensions
OpenTofu now ships:
- An MCP server for AI tools (like GitHub Copilot or ChatGPT)
- A VS Code extension (preview)
- A tofu-ls Language Server for Neovim, Emacs, Sublime
Result?
โ
Smart code suggestions
โ
Autocompletion
โ
Instant validation
โ
AI assistants with access to accurate resource docs
Infra-as-Code meets AI coding assistance.
โ๏ธ 5. DevX Improvements: Plan Targeting, Deprecated Variables, Safe Refactoring
OpenTofu 1.10 adds tons of quality-of-life improvements:
- -target-file and -exclude-file flags โ for CI/CD targeting
- moved and removed blocks โ safer refactoring
- deprecated variables/outputs โ manage module evolution
- Global provider cache lock โ fixes concurrency issues in pipelines
๐ 6. OpenTelemetry Support (Local Mode)
Need deep insights into your plan/apply operations?
โ
OpenTelemetry tracing now works locally
โ
Observe and debug with zero external setup
โ
Great for CI/CD and local testing
๐ Terraform vs OpenTofu: What's Different Now?
| Feature | Terraform Cloud/Enterprise | OpenTofu 1.10 |
|---|---|---|
| OCI Registry for Modules | โ | โ Yes |
| Native S3 State Lock (no Dynamo) | โ | โ Yes |
| External Key Provider Support | โ ๏ธ Partial | โ Full support |
| MCP Server for AI Assistants | โ | โ Yes |
| OpenTelemetry in Local Mode | โ | โ Yes |
| RBAC, Audit Logs, Drift Detection | โ Yes | โ Not Yet |
Terraform is still the go-to for large enterprise governance.
OpenTofu is winning developer love with speed, openness, and simplicity.
๐ฏ Final Thoughts
OpenTofu 1.10 is not just a community fork anymore โ it's carving its own path.
Whether you're building infra in side projects or scaling internal platforms for your org, this release is a huge win for developer experience, security, and modern cloud workflows.
Top comments (1)
Wowww ๐ฎ๐